Microsoft's AI web project NLWeb had an embarrassing security flaw that could allow attackers to steal sensitive files.

The bug, tracked as CVE-2025-31199, could allow hackers to access files in the Downloads folder, as well as caches utilized ...

AI has prevented real-world cyberattacks before they could begin, proving AI fast enough to beat human threat actors to ...

A researcher has found a major vulnerability in NLWeb, Microsoft's underlying protocol for letting AI agents talk to websites ...

Microsoft has patched a critical Copilot Enterprise flaw that gave researchers root access but controversially rated it ...

New SploitLight macOS vulnerability lets attackers use Spotlight plugins to bypass TCC and access sensitive data cached by ...

Microsoft warns of active attacks by Chinese hackers exploiting SharePoint flaws CVE-2025-49706 and CVE-2025-49704, urging urgent patching and mitigation steps.

Microsoft has issued an urgent alert about active zero-day cyberattacks targeting on-premises SharePoint servers used by U.S.

Zero-day exploits are the ghosts in the machine, silent, invisible, and devastating when they finally make themselves known. Last week, Microsoft confirmed one of the most serious intrusions in recent ...

Agentic AI’s Identity Risk LandscapeAI agents are evolving fast—and so are the threats exploiting them.According to Security Boulevard, agentic AI systems introduce a new class of identity-based ...

Cybercriminals are abusing the link wrapping security feature from Proofpoint and Intermedia to launch sophisticated phishing ...